$ rpki-client -vvf repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/3130332e3136392e3139382e302f32342d3234203d3e20313432333531.roa File: 3130332e3136392e3139382e302f32342d3234203d3e20313432333531.roa (raw, json) Hash identifier: Cw4pOJ79jeEX4VYPEj0ggp3n3fPwHSaTIPKQamrNGso= Subject key identifier: 03:93:FC:CE:7F:18:9E:8B:30:D6:90:A8:66:33:65:11:03:E0:6D:49 Certificate issuer: /CN=D7286D5F5B9ADD4CC166AD32519692F0C8902B29 Certificate serial: 1D19CF207FCD6F1E5B87B31D464BFDD3192CD34B Authority key identifier: D7:28:6D:5F:5B:9A:DD:4C:C1:66:AD:32:51:96:92:F0:C8:90:2B:29 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.cer Subject info access: rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/3130332e3136392e3139382e302f32342d3234203d3e20313432333531.roa Signing time: Wed 02 Apr 2025 09:00:01 +0000 ROA not before: Wed 02 Apr 2025 08:55:01 +0000 ROA not after: Wed 01 Apr 2026 09:00:01 +0000 asID: 142351 IP address blocks: 103.169.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.crl rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 03:26:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:19:cf:20:7f:cd:6f:1e:5b:87:b3:1d:46:4b:fd:d3:19:2c:d3:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7286D5F5B9ADD4CC166AD32519692F0C8902B29 Validity Not Before: Apr 2 08:55:01 2025 GMT Not After : Apr 1 09:00:01 2026 GMT Subject: CN=0393FCCE7F189E8B30D690A86633651103E06D49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2c:f8:a6:23:d1:ca:cf:42:eb:bc:52:81:c1: dd:97:7e:1f:23:41:c0:72:81:27:69:fb:bf:b0:21: 6f:1d:0b:01:9f:51:d8:36:bc:12:e7:8c:38:1c:b6: d3:0d:39:6c:89:ea:1b:0c:ed:9f:06:0d:ec:45:54: f1:72:71:85:38:a8:59:f4:c3:07:42:7f:f6:13:fb: 8c:3d:28:81:33:f2:05:93:9a:5a:79:a4:f3:71:17: 2a:9d:94:ea:98:27:15:fc:1b:98:c1:7d:cc:1c:04: 4a:02:9f:6b:e1:3d:ce:73:7c:73:cb:6c:a9:fd:e1: 45:4c:d8:e7:96:9b:94:8a:d1:93:29:ce:66:56:71: ea:1d:d5:c1:0c:e4:75:66:2a:f3:60:ae:51:dd:12: 3b:8b:68:c4:6b:24:6b:a7:30:88:7d:d7:f7:3a:45: 26:48:bc:7b:b0:30:c1:84:f9:f3:45:38:c0:e7:24: fd:07:5f:ab:4a:a4:39:a6:21:8b:a3:0f:36:a5:11: 60:40:d3:3f:33:4c:27:99:fc:83:c8:99:86:dd:93: 9d:c2:21:36:3f:33:66:8f:fa:bc:1d:e5:af:de:d4: 62:e9:ea:e0:48:08:72:b2:8a:83:88:5b:c6:ee:06: 07:90:af:0d:36:f0:21:93:44:22:04:36:4f:d7:65: 64:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:93:FC:CE:7F:18:9E:8B:30:D6:90:A8:66:33:65:11:03:E0:6D:49 X509v3 Authority Key Identifier: keyid:D7:28:6D:5F:5B:9A:DD:4C:C1:66:AD:32:51:96:92:F0:C8:90:2B:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/3130332e3136392e3139382e302f32342d3234203d3e20313432333531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.198.0/24 Signature Algorithm: sha256WithRSAEncryption 59:2e:c9:b0:55:47:b9:dd:6b:74:51:b7:d1:0b:eb:90:9b:4a: d5:ea:ad:dc:84:ac:cf:73:94:00:df:9e:aa:15:b0:43:30:38: 08:5e:79:b8:3a:da:67:a4:0c:a4:ad:b5:e5:a1:8c:80:94:73: cb:cc:7d:dc:51:5a:7d:39:b1:10:56:fa:69:5f:3f:3c:6e:d8: 90:c0:14:9f:ac:6f:83:76:ad:86:eb:30:27:b1:f4:07:dd:12: 39:dc:04:b8:b6:d4:10:ce:0d:57:73:1f:77:4a:78:f7:55:fd: 9c:97:0e:4a:45:a6:65:9b:92:9e:a0:57:24:16:f1:67:91:b4: a1:24:19:70:a5:ba:86:c7:dd:f3:66:a4:46:7b:30:54:08:cf: 6d:83:61:21:85:5d:3e:de:1e:80:bf:81:b1:71:cd:d2:18:af: 92:7d:6b:3b:7e:f9:4a:98:b6:d9:2b:51:78:b5:f9:f7:82:c3: 37:7d:a1:c8:4e:5d:28:76:9a:d5:f1:5f:98:bd:7b:53:33:61: 5a:8d:01:2a:12:63:08:f0:e8:18:c4:c2:36:b5:6c:87:cc:44: c0:87:7c:83:5c:99:a3:74:9b:f7:72:1c:9c:14:20:92:1a:4e: d0:e0:01:34:70:84:37:e4:8d:55:40:be:cd:b6:49:a8:a2:3f: cb:50:64:f9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHRnPIH/Nbx5bh7MdRkv90xks00swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDcyODZENUY1QjlBREQ0Q0MxNjZBRDMyNTE5NjkyRjBD ODkwMkIyOTAeFw0yNTA0MDIwODU1MDFaFw0yNjA0MDEwOTAwMDFaMDMxMTAvBgNV BAMTKDAzOTNGQ0NFN0YxODlFOEIzMEQ2OTBBODY2MzM2NTExMDNFMDZENDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJLPimI9HKz0LrvFKBwd2Xfh8j QcBygSdp+7+wIW8dCwGfUdg2vBLnjDgcttMNOWyJ6hsM7Z8GDexFVPFycYU4qFn0 wwdCf/YT+4w9KIEz8gWTmlp5pPNxFyqdlOqYJxX8G5jBfcwcBEoCn2vhPc5zfHPL bKn94UVM2OeWm5SK0ZMpzmZWceod1cEM5HVmKvNgrlHdEjuLaMRrJGunMIh91/c6 RSZIvHuwMMGE+fNFOMDnJP0HX6tKpDmmIYujDzalEWBA0z8zTCeZ/IPImYbdk53C ITY/M2aP+rwd5a/e1GLp6uBICHKyioOIW8buBgeQrw028CGTRCIENk/XZWSXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUA5P8zn8Ynosw1pCoZjNlEQPgbUkwHwYDVR0j BBgwFoAU1yhtX1ua3UzBZq0yUZaS8MiQKykwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NTI2MDY0MS1iY2UyLTQ0NWMtOWRlNS0zNzBhNzg3Zjk1MzAvMC9ENzI4NkQ1RjVC OUFERDRDQzE2NkFEMzI1MTk2OTJGMEM4OTAyQjI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDcyODZENUY1QjlBREQ0Q0MxNjZBRDMyNTE5NjkyRjBDODkw MkIyOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ1MjYwNjQxLWJjZTItNDQ1Yy05 ZGU1LTM3MGE3ODdmOTUzMC8wLzMxMzAzMzJlMzEzNjM5MmUzMTM5MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM1MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqcYwDQYJ KoZIhvcNAQELBQADggEBAFkuybBVR7nda3RRt9EL65CbStXqrdyErM9zlADfnqoV sEMwOAheebg62mekDKStteWhjICUc8vMfdxRWn05sRBW+mlfPzxu2JDAFJ+sb4N2 rYbrMCex9AfdEjncBLi21BDODVdzH3dKePdV/ZyXDkpFpmWbkp6gVyQW8WeRtKEk GXCluobH3fNmpEZ7MFQIz22DYSGFXT7eHoC/gbFxzdIYr5J9azt++UqYttkrUXi1 +feCwzd9ochOXSh2mtXxX5i9e1MzYVqNASoSYwjw6BjEwja1bIfMRMCHfINcmaN0 m/dyHJwUIJIaTtDgATRwhDfkjVVAvs22SaiiP8tQZPk= -----END CERTIFICATE-----Generated at Sun Apr 6 17:55:38 2025 by rpki-client